Avoid using names like 'Admin' for an Azure SQL Server admin account login

You must designate a Server admin login when you create an Azure SQL server. SQL server creates this account as a login in the master database. Only one such account can exist. This account connects using SQL Server authentication (username and password). It is recommended to avoid using names like 'admin' or 'administrator', which are targeted in brute force dictionary attacks.

Risk Level: Low
Cloud Entity: SQL Server on Virtual Machines
CloudGuard Rule ID: D9.AZU.IAM.02
Covered by Spectral: Yes
Category: Compute

GSL LOGIC

SQLServer should not have administratorLogin in ('admin', 'Admin', 'administrator', 'Administrator')

REMEDIATION

From Portal

  1. Sign in to the Azure portal at https://portal.azure.com/.
  2. Go to SQL servers and click on create.
  3. Under 'Server admin login', make sure to not use the names like admin/Admin/administrator/Administrator.
  4. Fill the required details and click create.

NOTE : This is set when the SQL Server is created. Only external tools connected to the SQL Server, such as SSMS, can be used to alter the user, but it will not change the value in the Portal.

From TF
Set the 'administrator_login' in 'azurerm_sql_server'.
NOTE : Name of administrator_login should not be admin/Admin/administrator/Administrator :

resource 'azurerm_sql_server' 'example' {
	..
	administrator_login          =  "NAME"
	administrator_login_password =  "PASSWORD"
	..
}

From Command Line
Run

az sql server create --name NAME --resource-group RESOURCEGROUP --admin-user USER --admin-password PASSWORD

References

  1. https://learn.microsoft.com/en-us/azure/azure-sql/database/logins-create-manage?view=azuresql
  2. https://learn.microsoft.com/en-us/cli/azure/sql/server?view=azure-cli-latest#az-sql-server-create
  3. https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/sql_server

SQL Server on Virtual Machines

SQL Server on Azure virtual machines enables you to use full versions of SQL Server in the Cloud without having to manage any on-premises hardware. SQL Server VMs also simplify licensing costs when you pay as you go.

Azure virtual machines run in many different geographic regions around the world. They also offer a variety of machine sizes. The virtual machine image gallery allows you to create a SQL Server VM with the right version, edition, and operating system. This makes virtual machines a good option for a many different SQL Server workloads.

Compliance Frameworks

  • Azure CSA CCM v.3.0.1
  • Azure CloudGuard Best Practices
  • Azure CloudGuard CheckUp
  • Azure CloudGuard SOC2 based on AICPA TSC 2017
  • Azure GDPR Readiness
  • Azure HIPAA
  • Azure ISO 27001:2013
  • Azure ITSG-33
  • Azure LGPD regulation
  • Azure NIST 800-171
  • Azure NIST 800-53 Rev 4
  • Azure NIST 800-53 Rev 5
  • Azure NIST CSF v1.1
  • Azure New Zealand Information Security Manual (NZISM) v.3.4
  • Azure PCI-DSS 3.2
  • CloudGuard Azure All Rules Ruleset